7f3207951bf6ef6e6b1c53b9b8f009c1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7f3207951bf6ef6e6b1c53b9b8f009c1
Size

198KB
MD5

7f3207951bf6ef6e6b1c53b9b8f009c1
SHA1

de7d9548543f378b30d3a272503fdce022cc41b6
SHA256

25fd2668773abf0c774f1a341ccec18f42b3c3132ee772a3d2696d4bba8ebcef
SHA512

005c3f1cb0c019a67fa38f27a18b58161602b46d4c37c305c9c12f45a42158a8571229344b61ebfdace46c271f75ef255d9cbd8e1e9890ae3e05f63ff33e04d0
SSDEEP

6144:cThpgbsXwgYzuRIfY9yc7BXV2AV6WkmaijzBstni:0Mu/f7BXXoWkmaqz6o

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/keygen/Keygen.exe

Files

7f3207951bf6ef6e6b1c53b9b8f009c1
.rar
keygen/FFF.NFO
keygen/FILE_ID.DIZ
keygen/Keygen.exe
.exe windows:5 windows x86 arch:x86

09d0478591d4f788cb3e5ea416c25237

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

Sections

.text
Size: 190KB - Virtual size: 356KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE